IETF Logo Mail Archive

Re: [Rats] Same claim in Evidence and Results (was Re: Second attempt at early allocation of CWT Labels (PR #152))

"Smith, Ned" <ned.smith@intel.com> Wed, 23 February 2022 01:22 UTC

Return-Path: <ned.smith@intel.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 151373A0C2A for <rats@ietfa.amsl.com>; Tue, 22 Feb 2022 17:22:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.663
X-Spam-Level:
X-Spam-Status: No, score=-2.663 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.576, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_KAM_HTML_FONT_INVALID=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=intel.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MMwlQ2LicWAO for <rats@ietfa.amsl.com>; Tue, 22 Feb 2022 17:22:36 -0800 (PST)
Received: from mga11.intel.com (mga11.intel.com [192.55.52.93]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E6CAB3A0C26 for <rats@ietf.org>; Tue, 22 Feb 2022 17:22:35 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=intel.com; i=@intel.com; q=dns/txt; s=Intel; t=1645579355; x=1677115355; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=amP2a1lUme4Kuddl+nsv/KR1GC6m/I57t/4CexAlj4c=; b=B/p7F2Z8kBrcVpdInsZpF0iVuEvX4WhSCpDfvFBFWcMzhA8A+nIDekpY 7tK6n/11Rd5QuHUOw5stpfykLOAoPJvvcxlvd3Sc4iGiKpjdAeKgEx5PY IvwGoHyqckbYZ5QwWrd0GJB6xR5hQ9zhuS0XQqX+y39HtuAA15GRPISaX SXnE8vdOjCWgcdcJdGFGLqq3kCgspDngxb4b1lYI5GGuo5tP++nr5Mm// AVU6IeLCZqbc5rydkGx7jCEc6H1L0t06NWP3XqLirnSK18MjIcAyd6h7k C2DVkbCgehGKX5gw5ktiUYSdsYSAmWAq0DX9U/uZJtwJDv3r2aTEdja8T w==;
X-IronPort-AV: E=McAfee;i="6200,9189,10266"; a="249439908"
X-IronPort-AV: E=Sophos;i="5.88,389,1635231600"; d="scan'208,217";a="249439908"
Received: from fmsmga002.fm.intel.com ([10.253.24.26]) by fmsmga102.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 22 Feb 2022 17:22:34 -0800
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.88,389,1635231600"; d="scan'208,217";a="637230560"
Received: from orsmsx606.amr.corp.intel.com ([10.22.229.19]) by fmsmga002.fm.intel.com with ESMTP; 22 Feb 2022 17:22:34 -0800
Received: from orsmsx607.amr.corp.intel.com (10.22.229.20) by ORSMSX606.amr.corp.intel.com (10.22.229.19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.20; Tue, 22 Feb 2022 17:22:33 -0800
Received: from orsmsx601.amr.corp.intel.com (10.22.229.14) by ORSMSX607.amr.corp.intel.com (10.22.229.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.20; Tue, 22 Feb 2022 17:22:33 -0800
Received: from orsedg603.ED.cps.intel.com (10.7.248.4) by orsmsx601.amr.corp.intel.com (10.22.229.14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.21 via Frontend Transport; Tue, 22 Feb 2022 17:22:33 -0800
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (104.47.70.109) by edgegateway.intel.com (134.134.137.100) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2308.20; Tue, 22 Feb 2022 17:22:32 -0800
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=WQRLy2TyaXR7N+wWlr63pSEoua+pwNkLFQ7XZhb2oWEUCNCl2RiOgwTfR65It29uDwZy1FoR9B97tYyMpxkkF4jOeTA23x3QGLEdTBYPFob7mMQn9x66IjAIEgdNrHJowhsomf/UT0fGSLlvjIVp/yVcZnIlQN7iE9n1+duB0b94uXMNBGgknMuUQ4Sk8X3g6ABPs8KBFFQZVY4G0qTCw/jLfDq+d0CvFLOR9v5boYbC48a9+rjj39SLay6U/v4g/sJPCnveh1CDzpk3Ofv1M4iKhzmNBCZF9kdeNX1w75YWDPkjzwj0s0KoN4fL1tBIliBQ0VlPIxtC34iGQzkI+g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=amP2a1lUme4Kuddl+nsv/KR1GC6m/I57t/4CexAlj4c=; b=KrI9Dgg2N/hepcS8/s3P4DKek1wy314Mxt5CvLZjZ2xlwJu5invmsS4o3/zDVeUB9bpqmqH1o6ZfxV/+TcrYG1Xx5M5Fk1jS130PoFs7Dm5R0LAlIh0NK+LmXdyi6Uo675epC5HEqFYzA9Nl1qi0PIP6Gi8GsnfDVpF2kSTHny3OyGpuI5xEnoQiNMxFBVXsZxY3xHVDkfxcd3CK0prF0PR1ALP+7U+DkDZlaW/qkMuLaZk1gMUwouAE9NavsRL/yFv4rSsWomdPHRQD0OczGDWlSuSEiHfxQ8jTt2VmwTAQvBSt4PpDmXYb4PPp8t5d96DGI66x/lNAZeNtceUprw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none
Received: from SJ0PR11MB5184.namprd11.prod.outlook.com (2603:10b6:a03:2d5::5) by SJ0PR11MB5614.namprd11.prod.outlook.com (2603:10b6:a03:300::24) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4995.16; Wed, 23 Feb 2022 01:22:31 +0000
Received: from SJ0PR11MB5184.namprd11.prod.outlook.com ([fe80::5cab:988d:9002:8251]) by SJ0PR11MB5184.namprd11.prod.outlook.com ([fe80::5cab:988d:9002:8251%5]) with mapi id 15.20.4975.011; Wed, 23 Feb 2022 01:22:31 +0000
From: "Smith, Ned" <ned.smith@intel.com>
To: "Eric Voit (evoit)" <evoit=40cisco.com@dmarc.ietf.org>, Laurence Lundblade <lgl@island-resort.com>, Henk Birkholz <henk.birkholz@sit.fraunhofer.de>
CC: "rats@ietf.org" <rats@ietf.org>
Thread-Topic: [Rats] Same claim in Evidence and Results (was Re: Second attempt at early allocation of CWT Labels (PR #152))
Thread-Index: AQHYKC9yeN+fI2SdREiYbTWUVh9NK6yf0SsA
Date: Wed, 23 Feb 2022 01:22:31 +0000
Message-ID: <403A71F8-DA40-498E-96B1-314588C1CBB8@intel.com>
References: <AM6PR08MB43254A236E44B49C1DCD9F8C8E369@AM6PR08MB4325.eurprd08.prod.outlook.com> <4706A62A-DA9F-4FA7-9E65-B27748D3F408@island-resort.com> <c2ea51c0-baeb-14cf-1d32-40b2995bd1ce@sit.fraunhofer.de> <4DABED4B-01F0-4678-8974-DC914BC170C5@island-resort.com> <e8b0895b-e3d9-0e33-e4a2-7d5e8b5ecc5e@sit.fraunhofer.de> <F1D075F6-1704-4B04-B127-9BB590C38004@intel.com> <a2c808b6-e8e9-ff73-b834-8772c5d0c365@sit.fraunhofer.de> <543A724D-C060-43AC-82C6-489D57A898D2@island-resort.com> <C50E82F7-B9FE-48F3-9BF2-2BC05B2A9D51@intel.com> <38794864-746D-43B2-A707-CB992AC197C2@island-resort.com> <61D2495E-E070-4C26-AF02-BE2ABCAAE897@intel.com> <E42B0CEB-2778-4AAF-ABCB-CCDC86286C94@island-resort.com> <5173ED99-D220-4D1A-9E26-7DCA39180A7D@intel.com> <ae5bb667-79f8-469e-09de-12df104d697f@sit.fraunhofer.de> <F5868DD0-D8BC-41EE-9DE8-9E3608F5137E@island-resort.com> <7CFE7304-4F9B-47D2-A899-29AFBF6FD82A@intel.com> <BL0PR11MB3122F140CCF9C13BB6D1D888A13B9@BL0PR11MB3122.namprd11.prod.outlook.com>
In-Reply-To: <BL0PR11MB3122F140CCF9C13BB6D1D888A13B9@BL0PR11MB3122.namprd11.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.58.22021501
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=intel.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 4e7b775d-21a2-47d7-70b1-08d9f66af67a
x-ms-traffictypediagnostic: SJ0PR11MB5614:EE_
x-microsoft-antispam-prvs: <SJ0PR11MB5614DFF031E530F60D8874B9E53C9@SJ0PR11MB5614.namprd11.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: YGSdodX+8NAAFznuxpPKZeV7bMVFLhRl/8HBH5Jh9ecVaM4jQXnZp13BWf62zPlzEyp17idroDxz/UKVFaAcVyqXRn7+Mio8WUkM998LlczU98kVH9pdpZ9p6lExnpP9LGg+04oxbz/get3kyRkHm0bpz0BFVqAIy62FDWkr+0dTeVlPdedbLMV4RxAyvGJTSGmgd45BdC6j2vsrMxgWboXhzTZxoRbyrrWF2Vay6N30fa+n8VHkEq6ql7jYiaWCSnr7DCT9cKfAmGgG4CRRSYbH2hbZo0kfb+68k9AuTz5AagQTJwZ9YybENuPanMS8Fm4USMI8uyY1Z+Q8+QmhsHgb9pQ9sTl+ldLjvBSQnsn+sKXcHN9YMIHFONN2AMUzsaW8X5r1zXuJAUid7hsPEVWdNstRnj1hvU7z83NkVyIGd8bEgmuxQ+xCtQPsJsPdGGG5lK8nmRmb57uHoIoT2P8eDzE8G8hlJoMFS0LJcxJSKMLoBgIlZ/wUsg+DIfZQOhoIcQYtyy5AhZtptITL0A6wsWGQDTfmz2vflvDomkOles7ClIhRu2u93ep4wQjJAOa0k7k3nHjiS98bwg98iYnTME4h9KYiFtvO7I7qhg2GmABdGGRojFFny5cq5h2d2wO+esS4V6OHClcdS4VZcIs4RTC66I/9Alm+mOSYcGAbD4GBwbpjmt0DLT0uuZVRt0NlTlpK0IxbHZSHnkGRyZLkv2EaLIJxrlG+cbXO9VNm9MdxrkQsVxVmSiBTswyEnYsxPfV6+0CHBcNaVD55nD+tjcYhR60m0lSaPyNjT0cVJIb2jlBH/JD3l/B7qBan
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SJ0PR11MB5184.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(366004)(66446008)(4326008)(110136005)(966005)(66946007)(83380400001)(64756008)(76116006)(66476007)(8676002)(66556008)(91956017)(508600001)(316002)(6486002)(33656002)(6512007)(8936002)(5660300002)(2616005)(36756003)(166002)(38070700005)(82960400001)(122000001)(86362001)(38100700002)(2906002)(6506007)(186003)(26005)(71200400001)(53546011)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_403A71F8DA40498E96B1314588C1CBB8intelcom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SJ0PR11MB5184.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 4e7b775d-21a2-47d7-70b1-08d9f66af67a
X-MS-Exchange-CrossTenant-originalarrivaltime: 23 Feb 2022 01:22:31.0884 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: +Uo4Y9d9l44v4OO10FFqqx/oFADmbC8kh5y3CYUH80kUvPZPyG/B8tAQPloNa3LApeJOzW4piyqGTKp45SilZA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR11MB5614
X-OriginatorOrg: intel.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/uAC8nP_fQW0jUuSh1OxAVhtqgFM>
Subject: Re: [Rats] Same claim in Evidence and Results (was Re: Second attempt at early allocation of CWT Labels (PR #152))
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Feb 2022 01:22:41 -0000

Eric,
From Mike Bursell’s book – “Trust in computer systems and the cloud”, its suggested that trust can be represented in a 2Xn table where the right column lists the trust assumptions of the trustee and the left column trust assumptions of the trustor. If the assumptions map / are corelated / from trustor to trustee then trust exists. In RATS arch context an Attester is a trustor and Verifier is a trustee. Or Verifier is trustor and RP is trustee. In a background check model, an Attester is a trustor and the RP is a trustee, but only if a Verifier agrees. In general, the Attester • RP trust relationship is the primary objective behind attestation. The other interactions support aspects of the trust ingredients.

The trust relationship has the following ingredients:
Context(s), Time-specifics, Action(s), Expectation(s) and Assurance(s).

Claims are just the building blocks for making statements in each of the 5 ingredients.

Using Mike Bursell’s model, the ingredients are what defines “scope” in the thread below.

The other RATS roles (Endorser, RVP, Verifier, Verifier Owner, RP Owner) qualify some aspect of the table ingredients. But ultimately, the RP needs to do the mapping exercise: Attester • RP in order to establish trust. That implies the table is fleshed out. Maybe some reduction of claims is applied to change the level of abstraction, granularity etc… but that doesn’t mean the context of who asserted what is filtered / removed.

From a standardization perspective, having commonly understood building block claims is a bit like agreeing on the words we use to make sentences. But if a claim could be used in more than one ingredient in the table above, then knowing which ingredient the sentence describes is important context. We wouldn’t expect to deduce the ingredient statement simply by looking at the claim any more than we should expect to deduce the meaning of a multi-word sentence simply by looking at one word.

The environment to which evidence measurements belong is an important context about the Attester. The context of which Attesting Env. Collects claims about which Target Env. Establishes an expectation that the Attester didn’t lie about its measurements. A RVP asserting claims that match evidence claims establishes assurance that the claims are correct. Etc…

The RATS RP role is essentially only half of a role because it doesn’t define application / use case specific elements; only attestation specific. That means some of the table ingredients (such as actions and possibly expectations) are out of scope for RATS. But RATS work creates a place to fill-in-the-blank for the parts that are app specific.

From: RATS <rats-bounces@ietf.org> on behalf of "Eric Voit (evoit)" <evoit=40cisco.com@dmarc.ietf.org>
Date: Tuesday, February 22, 2022 at 1:02 PM
To: "Smith, Ned" <ned.smith@intel.com>, Laurence Lundblade <lgl@island-resort.com>, Henk Berkholz <henk.birkholz@sit.fraunhofer.de>
Cc: "rats@ietf.org" <rats@ietf.org>
Subject: Re: [Rats] Same claim in Evidence and Results (was Re: Second attempt at early allocation of CWT Labels (PR #152))


Thanks Ned for your last two emails.



I have been trying to track the overall conversation across forks.   I see your comments/questions on the UEID thread as coupled to the thoughts below.  (I.e., "Since scope is defined by the entity that asserts the claims, it would be better to describe claims using terminology that doesn’t assume scope IMHO.")



I agree with this sentiment.  For me this set of threads keeps coming back to establishing claim context to the Relying Party.   If the Policy for Attestation Results doesn't simply and unambiguously know the identity/source of a claim, the architectural role making the claim, and the freshness, then we are wasting our time here.



So we need to minimize Relying Party policy language ambiguity.



For me, I like separating the names of claims which might come from different architectural roles.   Things are easier for Policy programming on the Relying Party this way.

And we won't suddenly find a claim from a Verifier which now can also come from an Attester.



There are alternatives to doing this with namespaces.  But we no proposals going down this path yet.

Eric



> -----Original Message-----

> From: RATS <rats-bounces@ietf.org> On Behalf Of Smith, Ned

> Sent: Tuesday, February 22, 2022 3:31 PM

> To: Laurence Lundblade <lgl@island-resort.com>; Henk Birkholz

> <henk.birkholz@sit.fraunhofer.de>

> Cc: rats@ietf.org

> Subject: Re: [Rats] Same claim in Evidence and Results (was Re: Second attempt

> at early allocation of CWT Labels (PR #152))

>

> I asked for clarification about what attestation roles' perspectives were

> assumed when describing the various claims. This was because there is language

> that suggests Endorser / RVP roles were considered. There is language that

> suggests RP, Verifier and Attester roles are considered too. But it isn't clear that

> all roles are considered for all claims.

>

> I suggested that if the goal was not to consider all roles for all claims, that the

> claims be described based on a least common denominator assumption. That is,

> only wording that is true for all roles would be included. It is a bit of a trick

> question in that you have to consider all roles in order to know what attributes

> will be common. It also means anything that is specific to a role or nuanced

> would not be included so as to avoid special case descriptions.

>

> That means, terminology that is aimed at manufacturers, relying party, verifier,

> attester should be removed or clearly identified as informative. My guess is the

> result will be that the CDDL most closely captures normative expression and

> most everything else is informative.

>

> On 2/22/22, 11:51 AM, "Laurence Lundblade" <lgl@island-resort.com<mailto:lgl@island-resort.com>> wrote:

>

>     Absolutely do not want to expand the EAT doc to cover Endorsement and

> Reference Values in any way, but maybe another draft might make use of some

> stuff that is in EAT.

>

>     Ned suggested it, not me. :-)

>

>     LL

>

>

>     > On Feb 22, 2022, at 11:19 AM, Henk Birkholz

> <henk.birkholz@sit.fraunhofer.de<mailto:henk.birkholz@sit.fraunhofer.de>> wrote:

>     >

>     > You are kidding, right?

>     >

>     > On 22.02.22 20:12, Smith, Ned wrote:

>     >> Maybe that’s a good idea. Maybe it’s not. Not sure yet. :-)

>

>

> _______________________________________________

> RATS mailing list

> RATS@ietf.org<mailto:RATS@ietf.org>

> https://www.ietf.org/mailman/listinfo/rats

v2.23.0 | Report a Bug | By Email